Versent
GoogleApps Login Broken in v2.24.0
When trying to use v2.24.0 to log in via GoogleApps we receive the following error message:
error authenticating to IdP: page is missing saml assertion
Capturing the html pages we find it routes from the email entry page, to password entry page, then back to email entry.
Using v2.23.0 works without issue.
Looks like it might be related to #445
@purduemike Thanks, after some time-consuming fiddling I switched to aws-google-auth from Cevo
ver 2.25.0 broken for me too but aws-google-auth works
error authenticating to IdP: page is missing saml assertion
Quick update, now I can't reproduce the issue on any of the recent versions, 2.23.0, 2.24.0, or 2.25.0. All of them are now working for me.
Currently looking at other SAML -> AWS cred solutions since ran into errors with the aws-google-auth documented here https://github.com/cevoaustralia/aws-google-auth/issues/184
Google seems to be random on who errors like this effects
Just fyI: - I was able to overcome this issue by removing 'Google Prompt' (note: I use an iPhone) and reverting back to Authenticator app in the Google Account I authenticate against.
We started running into this exact issue in 2.26.1. After running saml2aws in debug mode, it looks like google is sending us to this page:
Im not sure if this is a condition that saml2aws can handle.
It appears that going through https://accounts.google.com/DisplayUnlockCaptcha removes that screen and allows users to login again. So my gut feeling is that saml2aws cannot handle that condition.
I was getting this issue on a recent version of saml2aws, the issue was that I had enabled "Use phone as a security key" as a 2SV method under my Google 2SV Settings. I removed that method and it fixed the issue.
